Vulnerabilities > Bosch > Smart Home Controller Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-29 | CVE-2019-11896 | Permission Issues vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the 3rd party pairing mechanism of the Bosch Smart Home Controller (SHC) before 9.8.907 that may result in a restricted app obtaining default app permissions. | 6.8 |
| 2019-05-29 | CVE-2019-11893 | Permission Issues vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the app permission update API of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in a restricted app obtaining default app permissions. | 4.9 |
| 2019-05-29 | CVE-2019-11892 | Improper Access Control vulnerability in Bosch Smart Home Controller Firmware A potential improper access control vulnerability exists in the JSON-RPC interface of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in reading or modification of the SHC's configuration or triggering and restoring backups. | 6.8 |
| 2019-05-29 | CVE-2019-11891 | Permissions, Privileges, and Access Controls vulnerability in Bosch Smart Home Controller Firmware A potential incorrect privilege assignment vulnerability exists in the app pairing mechanism of the Bosch Smart Home Controller (SHC) before 9.8.905 that may result in elevated privileges of the adversary's choosing. | 5.4 |